Share this Job

Information Security Analyst

Date: Jan 16, 2023

Location: Nashville, TN, US, 37228

Company: A. O. Smith Corporation

Company / Location Information

We are one of the leading manufacturers of water heating and water treatment technologies in the world. We are a $3.5 billion company with 140+ years history and we employ more than 12,000 individuals globally who pride themselves on providing the world with innovative water technology. We are committed to Continuous Improvement, not just in our factories or processes, but in our people.

Primary Function

The Information Security Engineer Lead is a high-level technical expert in the security domain and works with Information Technology (IT) management and staff to set and monitor security standards, best practices, and systems necessary to ensure the protection and confidentiality of informational assets. This Senior Engineer must possess strong technical knowledge of information systems, IT security practices and technologies, and ability to implement and improve those security controls. The Senior Information Security Engineer must have a keen ability to review, respond and remediate security incidents in a timely manner.

This role is eligible for a remote work schedule of up to two days remote work per week. New employees are eligible to apply after successfully completing their initial 90 days of employment and training.

Responsibilities

  • Implement and maintain security tools and reporting mechanisms to support testing and information assurance.
  • Conduct and/or supervise intrusion and vulnerability testing; identify, implement, and manage vulnerability scanning tools; coordinate penetration testing and manage security reporting process.
  • Perform security risk assessments, develop baselines, and review technical risk analysis results for projects and new implementations; provide options for security controls to mitigate risk.
  • Technical advisory for security & compliance audits and reviews.
  • Oversight of security problem resolution for all information security compliance solutions.
  • Provides oversight for security incident investigations and reviews or prepares appropriate documentation. Ensures that preventive measures are put into effect.
  • Participate as member of the Security Incident Response Team and participate in a Technical Security Advisory Group that facilitates the security review process.
  • Provides oversight for security assurance of intrusion detection systems, firewalls, gateways, virus protection devices, network infrastructure, content filtering, web development, application and database systems, business systems and account administration.
  • Participates in the computer security incident response process that includes include monitoring, tracking, notification, containment, resolution, escalation, and reporting.
  • Defines and compiles security metrics and performance measures for management reporting.
  • Other duties may be assigned as needed.

Qualifications

  • Bachelor's degree in computer science or information technology management 
  • Minimum of four (4) years of specialized Information security experience
  • Experience with O365 Security Suite
  • Vulnerability Management
  • Security Information and Event Management (SIEM)
  • Endpoint Detection and Response (EDR)

We Offer

Competitive compensation package and comprehensive benefits plans which include medical and dental insurance, company-sponsored life insurance, retirement security savings plan, short- and long-term disability programs and tuition assistance.

This role is eligible for a remote work schedule of up to two days remote work per week. New employees are eligible to apply after successfully completing their initial 90 days of employment and training.


Nearest Major Market: Nashville

Job Segment: Information Security, Computer Science, Database, Wastewater, Water Treatment, Technology, Engineering